Skip to main content
SkillJury
Back to registry

convex-security-check

waynesutton/convexskills

A quick security audit checklist for Convex applications covering authentication, function exposure, argument validation, row-level access control, and environment variable handling.

Installs1
Install command
npx skills add https://github.com/waynesutton/convexskills --skill convex-security-check
Security audits
Gen Agent Trust HubPASS
SocketPASS
SnykPASS
About this skill
A quick security audit checklist for Convex applications covering authentication, function exposure, argument validation, row-level access control, and environment variable handling. Before implementing, do not assume; fetch the latest documentation: Use this checklist to quickly audit your Convex application's security: - Primary: - Production Security: - Functions Auth: - For broader context: - Never run npx convex deploy unless explicitly instructed - Never run any git commands unless explicitly instructed - Always verify user identity before returning sensitive data - Use internal functions for sensitive operations - Validate all arguments with strict validators - Check ownership before update/delete operations - Store API keys in environment variables - Review all public functions for security implications - Missing authentication checks - Always verify identity - Exposing internal operations - Use internalMutation/Query - Trusting client-provided IDs - Verify ownership - Using v.any() for arguments - Use specific validators - Hardcoding secrets - Use environment variables - Convex Documentation: - Convex LLMs.txt: - Authentication: - Production Security: - Functions Auth:

Source description provided by the upstream skill listing. Community reviews and install context appear in the sections below.

Community Reviews

Latest reviews

Sign in to review

No community reviews yet. Be the first to review.

Browse this skill in context
FAQ
What does convex-security-check do?

A quick security audit checklist for Convex applications covering authentication, function exposure, argument validation, row-level access control, and environment variable handling.

Is convex-security-check good?

convex-security-check does not have approved reviews yet, so SkillJury cannot publish a community verdict.

What agent does convex-security-check work with?

convex-security-check currently lists compatibility with codex, gemini-cli, opencode, cursor, github-copilot, claude-code.

What are alternatives to convex-security-check?

Skills in the same category include telegram-bot-builder, flutter-app-size, sharp-edges, iterative-retrieval.

How do I install convex-security-check?

npx skills add https://github.com/waynesutton/convexskills --skill convex-security-check

telegram-bot-builderflutter-app-sizesharp-edgesiterative-retrieval
Related skills

More from waynesutton/convexskills

convex-security-audit

by waynesutton/convexskills

927

Comprehensive security review patterns for Convex applications including authorization logic, data access boundaries, action isolation, rate limiting, and protecting sensitive operations.

Software EngineeringTesting and QAFirst seen Jan 23, 2026

avoid-feature-creep

by waynesutton/convexskills

817

Stop building features nobody needs. This skill helps you ship products that solve real problems without drowning in unnecessary complexity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

convex-agents

by waynesutton/convexskills

780

Build persistent, stateful AI agents with Convex including thread management, tool integration, streaming responses, RAG patterns, and workflow orchestration.

Software EngineeringFrontend and DesignFirst seen Jan 23, 2026

convex-component-authoring

by waynesutton/convexskills

734

Create self-contained, reusable Convex components with proper isolation, exports, and dependency management for sharing across projects.

Software EngineeringFrontend and DesignFirst seen Jan 23, 2026
Related skills

Alternatives in Software Engineering

telegram-bot-builder

by sickn33/antigravity-awesome-skills

998

Source details, install context, and public review data are available on the full page.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

flutter-app-size

by flutter/skills

996

Analyzes and optimizes Flutter application size by measuring build artifacts, generating size analysis reports, utilizing Dart DevTools for component breakdown, and implementing specific size reduction strategies such as debug info splitting, resource compression, and platform-specific tree-shaking. Assumes a...

Software EngineeringFrontend and Design

sharp-edges

by trailofbits/skills

994

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

iterative-retrieval

by affaan-m/everything-claude-code

993

Solves the "context problem" in multi-agent workflows where subagents don't know what context they need until they start working.

Software EngineeringFrontend and DesignFirst seen Jan 25, 2026